Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
File: jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft (raw, json)
Hash identifier: yFOiPuyLDYVs2ti6W+xAaDektnZNy/jxru4Nbj6TKDw=
Subject key identifier: B0:9F:DD:68:37:98:4D:1F:B6:80:D4:8D:61:BA:AB:D9:92:00:FB:FA
Authority key identifier: 8E:79:CE:F4:58:DE:50:39:2E:3C:02:B6:91:82:F3:4C:60:14:8D:24
Certificate issuer: /CN=8e79cef458de50392e3c02b69182f34c60148d24
Certificate serial: 019F197A330448DDCB7613CF1833CEF68CB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
Manifest number: 0358
Signing time: Tue 30 Jun 2026 17:01:06 +0000
Manifest this update: Tue 30 Jun 2026 17:01:06 +0000
Manifest next update: Wed 01 Jul 2026 17:01:06 +0000
Files and hashes: 1: _c6xx4G9gRqlWT599mmQOoWoW50.roa (hash: c/9VJ4HKTN9Q4dyySRrDW6GfcNhn9tZLqvs7ju71Tx8=)
2: jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl (hash: I3HENMwq5NW8aOk5GeJ8rItbabIG7B6cfv846rJvfhc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:7a:33:04:48:dd:cb:76:13:cf:18:33:ce:f6:8c:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e79cef458de50392e3c02b69182f34c60148d24
Validity
Not Before: Jun 30 17:01:06 2026 GMT
Not After : Jul 1 17:01:06 2026 GMT
Subject: CN=b09fdd6837984d1fb680d48d61baabd99200fbfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a4:cb:e5:0e:55:8c:99:03:56:ae:33:2c:f1:
0c:25:63:6b:3b:57:79:e6:8d:f6:18:e9:5a:42:0a:
46:7f:82:4d:a3:41:b1:5e:2d:b2:2e:ab:ad:04:03:
88:da:c3:24:0d:23:80:af:56:37:b6:37:7c:fe:13:
22:1f:72:ce:27:28:f3:52:9c:5b:6b:d9:30:2e:28:
2f:f4:be:7f:84:81:f4:fb:48:ca:14:b3:33:ce:6b:
a3:af:a3:c5:38:65:95:f1:f3:2c:99:9d:12:18:97:
a1:df:14:ae:48:c7:05:e4:46:91:53:24:1a:2a:37:
f9:11:27:4e:f8:6b:a6:1a:ef:ed:19:2a:ed:96:33:
a4:f3:09:3e:3e:39:86:ec:d5:2c:85:51:08:16:d2:
4b:35:23:d2:8b:34:73:81:66:7b:81:6b:4a:29:fd:
34:e9:df:78:87:f6:6e:5b:78:5f:60:97:34:2b:76:
95:56:9d:09:cb:e7:78:e8:47:e6:ad:8e:04:25:56:
48:ef:55:06:1f:96:9c:db:1f:60:a7:ed:32:8b:a1:
0a:41:bc:d5:3c:dc:77:1f:4b:93:c1:7c:ce:0e:e9:
2a:b5:d6:96:b1:25:52:d9:f3:08:01:40:88:99:97:
ea:5b:d0:e0:4d:1f:56:72:d5:c4:ae:1c:a8:4e:0f:
8f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:9F:DD:68:37:98:4D:1F:B6:80:D4:8D:61:BA:AB:D9:92:00:FB:FA
X509v3 Authority Key Identifier:
keyid:8E:79:CE:F4:58:DE:50:39:2E:3C:02:B6:91:82:F3:4C:60:14:8D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:59:1d:a4:3d:fe:cc:17:e2:2b:be:32:1b:dc:09:d7:44:f9:
ac:d5:94:3f:d4:2e:18:e3:02:f2:14:51:6c:60:ff:3d:9c:3d:
67:f9:79:9b:a9:2e:02:b3:a8:2f:bd:53:be:02:75:6b:33:94:
78:91:38:51:9a:f1:ee:c3:e3:7c:f6:63:ee:af:37:19:da:3f:
7c:51:cf:69:46:71:e7:35:51:f3:91:b9:1e:a3:8f:d6:99:49:
6f:5c:be:21:9a:d0:93:9d:fb:40:0a:e6:86:a3:9c:17:04:8d:
56:19:a7:25:3b:33:b1:00:3c:23:49:f8:9a:a3:58:89:bf:dd:
a0:3e:28:3c:6b:8c:03:35:35:3d:41:6d:96:cd:21:8e:be:05:
20:9f:db:ab:03:21:32:5a:80:2b:45:e0:c7:36:c3:74:39:bb:
ea:13:93:24:68:7a:80:e9:7f:df:11:df:c2:cc:20:da:0a:58:
b2:d5:09:d8:90:e0:e5:eb:7f:23:81:a9:90:16:d6:c6:05:3c:
7f:ff:ee:8f:f4:14:9e:b0:01:a2:2f:c8:ce:5d:9f:5f:9d:84:
c6:58:b7:5f:b8:ea:12:ca:06:ef:06:3a:36:5c:cb:57:ce:f8:
5a:79:dd:e9:30:8e:e6:c1:6d:5b:3a:2a:27:ef:a6:60:c5:78:
3e:c3:09:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:37:39 2026 by rpki-client